sed、grep,打印显示139.198.40.94的行
[root@i-3pedyvud httpd]# sed "/139.198.40.94/p" /etc/httpd/logs/access_log -n
<-> {-} [-] [139.198.40.94:881] 43.245.199.137 - - [19/Sep/2022:17:23:48 +0800] "GET / HTTP/1.1" 302 - "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4 240.111 Safari/537.36"
<-> {-} [-] [139.198.40.94:881] 43.245.199.137 - - [19/Sep/2022:17:23:49 +0800] "GET /index.php/login HTTP/1.1" 200 4394 "http://139.198.40.94:881" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4 240.111 Safari/537.36"
[root@i-3pedyvud httpd]# grep "139.198.40.94" /etc/httpd/logs/access_log
<-> {-} [-] [139.198.40.94:881] 43.245.199.137 - - [19/Sep/2022:17:23:48 +0800] "GET / HTTP/1.1" 302 - "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4 240.111 Safari/537.36"
<-> {-} [-] [139.198.40.94:881] 43.245.199.137 - - [19/Sep/2022:17:23:49 +0800] "GET /index.php/login HTTP/1.1" 200 4394 "http://139.198.40.94:881" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/86.0.4 240.111 Safari/537.36"
[root@i-3pedyvud httpd]#
输出ssh服务端支持的加密算法,并取60-77行,排查掉none和banner的行。
sshd -T > sshdt.txt;cat sshdt.txt | head -n 77 | tail -n +60 | grep -v 'none' | grep -v 'banner'
sshd -T > sshdt.txt;sed -n '60,77p' sshdt.txt | grep -v 'none' | grep -v 'banner'
---------------------------------------------------------------------------------------------------------------------------------
1、从第3000行开始,显示1000行。即显示3000~3999行
cat filename | tail -n +3000 | head -n 1000
复制
2、显示1000行到3000行
cat filename| head -n 3000 | tail -n +1000
复制
注意两种方法的顺序
分解:
tail -n 1000:显示最后1000行
tail -n +1000:从1000行开始显示,显示1000行以后的
head -n 1000:显示前面1000行
3、用sed命令
sed -n '5,10p' filename
这样你就可以只查看文件的第5行到第10行。
4、随文件变化显示文件末尾几行
tail -f filename